01:34:03 <luke_jobless_sb> I am cleaning up. To look for packages to remove, how can I have a list of dependent packages?
01:53:17 <voy4g3r2> luke_jobless_sb: you can use pkg info -r or pkg info -f
01:53:25 <voy4g3r2> both require passing the package you are referring too
01:53:52 <voy4g3r2> do a man pkg-info which will give you a little more details and options you can tweak
01:54:50 <luke_jobless_sb> voy4g3r2: thank you
01:56:49 <luke_jobless_sb> does anyone know any drawback if i disable aws ssm-user?
12:38:13 <bbsl> Hi. I am running freebsd 14.1 unfortunately (maybe) I want to use datadog for monitoring and Im not sure how to best "attack" this. My first thought was using a port but this was deprecated and after deleting the third line that sets "size" for a given package in the Makefile I thought better of it. I tried to build from source but datadog somehow managed to make that not so easy even though I
12:38:15 <bbsl> thought this agent was written in go its a ball of python code to get it to build. Then I remembered that freebsd now has a build of podman so I could maybe run it via podman but when I tried that I fail with https://privatebin.net/?dc6b894d502d5a8b#EPFf1pbmC95zHFSZ59HHuv34fgo2AnJKB37DdVoev7i8 . Anyhow so this is my step back. Im a noob at FreeBsd as you can tell so I need some advice as to
12:38:17 <bbsl> viable/fewest hacks route ways to attack this I think.
12:48:05 <Alver> bbsl: that looks like your podman environment isn't clean/ready
12:48:31 <Alver> Are you doing this on a plain host or in a jail?
12:59:08 <bbsl> Alver: Podman Im trying to make work via plain host. I didnt reboot yet (perhaps I should) but I followed the FreeBsd section here https://podman.io/docs/installation to set it up
13:05:04 <bbsl> Also it wasnt clear to me why podman needs to run in the background via a service. I thought on linux that was one of the main selling points of podman, that it didnt need a "daemon" but I might be misunderstading whats happening on FreeBsd also in addition to why :o)
13:06:33 <bbsl> Anyways if I can run datadog-agent via podman that solves my problems (except it runs as root which I guess is not great perhaps) but if there are less hacky solutions that are more in line with how one would solve this on FreeBsd please share those.
13:16:58 <DarkUranium> I actually wonder, how does one get a manpage on a specific shell builtin?
13:17:28 <DarkUranium> I guess it's all in 1 big page for the shell itself?
13:49:04 <TommyC> Depends on the shell. Bash has "help" so you can type something like: "help declare" and it'll output the bit about the declare option.
14:02:55 <uwe> zsh has `man zshbuiltins`
14:55:17 <comrumino> is Dragon RTL8125BG supported out of the box?
15:50:31 <CrtxReavr> If you're going to use zsh, you may as well just go full retard: https://ohmyz.sh/
15:51:18 <CrtxReavr> (It prolly also means you're an emacs person.)
15:52:15 <mfisher> didn't know about that domain hack... spiffy
15:52:31 <CrtxReavr> domain hack?
15:52:57 <mfisher> ohmyz.sh https://en.wikipedia.org/wiki/Domain_hack
16:03:07 <johnjaye> it says flicker uses south korea for the domain flic.kr
16:05:43 <aquamo4k> as I'm old, i knew the guy who sold ing.com to ing.   he used to have a machine called scream.ing.com :-)
16:05:51 <mfisher> awesome
16:07:51 <CrtxReavr> I used to work for EMC. . . part of emc i worked for was formerly DataGeneral. .
16:09:16 <CrtxReavr> Most of our lab shit still used dg.com sub-domaims and dg.com itself redirected to emc.com publically
16:10:14 <CrtxReavr> An EMC salesman, w/o auth "sold" dg.com to DollarGeneral.
16:10:51 <CrtxReavr> This kicked-off shit-storm of work for us.
16:11:00 <Tenkawa> CrtxReavr: Never worked "for" them but used multiple Symms, and CLARiiON's over my career heheh
16:13:15 <mfisher> whoa
16:13:26 <CrtxReavr> Most of the clariion devs were old DG/UX coders.
16:13:37 <CrtxReavr> Huge tallents
16:14:11 <Tenkawa> heh.. Yeah
16:14:23 <Tenkawa> I was at AT&T at the time..
16:14:37 <CrtxReavr> Was an honor just to see them work, let alone collaborate with them and actually teach 'em a few tricks.
16:14:51 <CrtxReavr> They had mad stories.
16:14:54 <Tenkawa> Indeed
16:15:14 <Tenkawa> NCR storage people had some wild stories too
16:15:24 <Tenkawa> I spent tine there in the 90's
16:17:37 <CrtxReavr> DG/UX had some really cutting edge features that either inpired other platforms or were sadly lost to time and media misdirection.
16:18:40 <CrtxReavr> First OS to use a memory FS for /dev/
16:18:42 <aquamo4k> the Clariion Disks arrays ... memories.   When I was at SGI we have the v1 RAID-3 only model, DB-9 fibre channel.   I went through 4 generations of those disk arrays :-)
16:19:50 <aquamo4k> I would connect two full racks to one SGI, and mirror across them so I could safely update their firmware, used XLV/XFS which was pretty good for the era
16:20:29 <CrtxReavr> Had a service wrapper kernel module that could Make any TCP based service fault tollerant with their NUMA tech.
16:21:36 <Rajnhildacho> «I've seen things you people wouldn't believe...»
16:22:17 <aquamo4k> yeah, and now gone like tears in the rain ... :-)
16:59:28 <Tenkawa> Not sure if anyone else is running much on any arm64 boxes with freebsd but I've been pleased currently even with some limited hardware ...
17:02:42 <Hecate> Tenkawa: nice to hear!
17:03:26 <Tenkawa> Hecate: yeah the RK3588 working actually came as a surprise
17:05:59 <Hecate> Tenkawa: it looks like a lovely thing! What's the use?
17:06:47 <Tenkawa> Hecate: I am a hobbyist now that I'm retired... My old career though was db/os building/devel
17:07:04 <Tenkawa> I do this for fun and to stay up to date
17:08:38 <Tenkawa> I'm curious to see if I can get one of my RISC-V machines running on it too heh...
17:31:22 <aquamo4k> i am going to give the latest on AWS a try today on graviton and see how it behaves
17:37:45 <luke_jobless_sb> aquamo4k: ssm-user is confuses me for process view. it sticks to my jail activities. i wonder if there we have any drawback of disabling ssm-user
17:38:09 <luke_jobless_sb> aquamo4k: works beautiful beside this
17:47:57 <luke_jobless_sb> before a reinvenion of wheel, is there any configuration of partial parallel starts of jails?
17:48:27 <luke_jobless_sb> I have a governing jail that should start first and all others in parallel
17:52:17 <drobban_> luke_jobless_sb: depend?
17:53:34 <drobban_> https://wiki.freebsd.org/Jails
17:57:36 * luke_jobless_sb erases his code
18:16:42 <drobban_> luke: =D haha
18:55:42 <dandyn> anyone here who is good at IPFW?
18:59:21 <CrtxReavr> Probably better to ask your question, vs. take a poll.
19:00:15 <dandyn> Oct 22 00:00:25 MyComp kernel: ipfw: 65500 Deny UDP 192.168.1.1:45824 192.168.1.255:7788 in via em0
19:00:44 <dandyn> got em in /var/log/security every min.
19:01:31 <CrtxReavr> pastbin your 'ipfw show' output.
19:06:10 <dandyn> https://pastebin.com/E9JLtGcM
19:09:04 <CrtxReavr> 192.168.1.1 is your ip?
19:09:51 <dandyn> default gateway
19:10:50 <CrtxReavr> So not your FreeBSD host?
19:10:59 <dandyn> WAN-Router-Server
19:11:01 <dandyn> nope
19:12:02 <CrtxReavr> This an AWS instance?
19:12:49 <Tenkawa> I found a few hits for 7788
19:13:08 <CrtxReavr> arp -an | fgrep 192.168.1.1
19:13:19 <Tenkawa> Unreal, Quicktime, and 1 trojan
19:13:27 <Tenkawa> (trojan attempt)
19:14:00 <Tenkawa> TCP has more but those were the main UDP packet types
19:14:55 <mzar> dandyn: what is your issue? are you concerned about this blocked broadcast? want to link it with service? disappointed with IPFW filtering it? or anything else?
19:15:27 <dandyn> I wanna know what it is.
19:15:28 <dandyn> :)
19:15:55 <dandyn> I dont have unreal, Quicktime, or trojan on a new installed freebsd 14.1
19:16:06 <mzar> ha.. then fire up sniffer, like tcpdump or wireshark, catch this datagram and let us know
19:16:11 <CrtxReavr> I saw a lot of hits about different network devices sending 7788/udp broadcasts every minute.
19:16:24 <Tenkawa> Mono uses it too
19:16:29 <Tenkawa> yeah Asus
19:16:33 <dandyn> asus router yes
19:16:37 <dandyn> but this is ydp?
19:16:39 <dandyn> udp
19:16:52 <Tenkawa> yeah Asus uses udp plenty
19:16:55 <dandyn> okok
19:17:18 <mzar> broadcast won't work for tcp, so udp is reasonable choice
19:17:25 <Tenkawa> indeed
19:18:16 <BinGOs> spray and pray
19:18:28 <mzar> there is a lot of noise in network, it resembles me white noise
19:18:54 <CrtxReavr> https://www.asus.com/us/support/faq/1044553/
19:19:43 <dandyn> CrtxReavr: they say tcp.. but this is UDP hmm..
19:19:58 <dandyn> in your link
19:20:31 <dandyn> this is as far as I have come too
19:20:44 <dandyn> but maybe like mzar said, sniff it
19:20:52 <dandyn> any sinple lightweight sniffer?
19:20:55 <CrtxReavr> https://www.snbforums.com/threads/many-log-events-port-7788.73023/
19:21:14 <CrtxReavr> I think it's a nothing burger.
19:21:34 <CrtxReavr> If it bothers you, smash router.
19:22:33 <dandyn> :)
19:22:40 <Tenkawa> dandyn: you don't have a Netgear sitting in there somewhere too do you?
19:22:52 <dandyn> nope
19:23:02 <Tenkawa> Ok.. they use it too
19:23:21 <dandyn> I see
19:24:35 <dandyn> so lan IP ...1.1 is default gateway, what is ...1.255 ?
19:24:46 <dandyn> what might that be?
19:25:10 <dandyn> the gateway in this case is dhcp server "asus router" yes?
19:25:51 <BinGOs> if it is /24 then 255 is the whole network.
19:26:06 <Tenkawa> Ok.. that doc didn't list it but I found another that says it is used on tcp "and" udp
19:26:39 <Tenkawa> for minimally the asus  RT-AX56U
19:26:45 <Tenkawa> possibly others
19:27:06 <dandyn> "192.168.1.255 is a private IP address and directly related to your Wi-Fi network. It is the chain of numbers you use to access the router admin page."
19:27:16 <Tenkawa> (that showed up in a firmware update)
19:27:45 <Tenkawa> 192.168.1.255 is a (old terminology) bclass c broadcast ip
19:28:02 <Tenkawa> s/bclass/class
19:28:03 <CrtxReavr> That's likely the broadcast ip for your lan.
19:28:20 <CrtxReavr> ifconfig would tell us
19:28:24 <Tenkawa> indeed
19:28:32 <CrtxReavr> you use bash?
19:29:06 <CrtxReavr> alias tb='ncat termbin.com 9999'
19:29:08 <dandyn> broadcast 192.168.1.255
19:29:29 <CrtxReavr> ifconfig | tb
19:30:13 <dandyn> tb not found :)
19:30:30 <CrtxReavr> 15:29 < CrtxReavr> alias tb='ncat termbin.com 9999'
19:30:58 <dandyn> aha sorry
19:31:10 <CrtxReavr> Just an easy way to pastebin from the cli
19:31:21 <dandyn> cool
19:31:41 <CrtxReavr> it'll print a simple url you can share
19:32:03 <dandyn> ok so it has something to to with default gateway IP and broadcast IP, and thereby the router?
19:32:28 <BinGOs> yes, the router is broadcasting looking for friends
19:32:36 <dandyn> aha :)
19:32:51 <CrtxReavr> yeah. . . whatever this service is. . .
19:33:48 <dandyn> okok, how can I stop it from fill up the /log/security file?
19:33:51 <CrtxReavr> BTW, it's a router, not a gateway. . . gateway is sloppy and imprecise in 99.99% of cases.
19:33:58 <dandyn> can we ignore it somehow?
19:34:31 <CrtxReavr> you could add a silent drop for it.
19:34:47 <dandyn> that sounds interesting
19:36:08 <dandyn> where can I read about that?
19:36:18 <dandyn> "silent drop"
19:38:52 <mzar> you can beging with "man ipfw"
19:42:23 <dandyn> aye :)
19:42:31 <dandyn> thnx all!
19:44:41 <BinGOs> A rule without 'log' keyword is a silent rule.
19:45:04 <BinGOs> (apparently). I am no ipfw expert.
19:45:40 <BinGOs> caveat emptor etc
20:24:08 <CrtxReavr> dandyn, this looks like a good guide https://www.adminbyaccident.com/freebsd/how-to-freebsd/how-to-configure-the-ipfw-firewall-on-freebsd/
20:29:38 <dandyn> thnx <3
23:47:09 <ivy> i just realised we now have support for enforced .1q tagging on SR-IOV PF interfaces, which means SR-IOV support is no longer completely useless
23:47:27 <ivy> (added back in May, but i missed it)
23:50:59 <DarkUranium> Any AppJail users here? I'm trying it out, but I ran into a problem.
23:51:19 <Mexis> my keyboard wont work with freebed but works with one if i add it via usb
23:51:22 <Mexis> on laptop
23:51:24 <Mexis> rough
23:51:41 <DarkUranium> tl;dr trying to make a Linux jail with a ':<random>' vnet gives me 'ifconfig: interface 251cb06c45d does not exist'
23:54:25 <ivy> unrelated, i'm getting a very strange error from buildworld that i don't understand: https://0x0.st/XlCr.txt
23:54:37 <ivy> it seems like something failed but it didn't print/log the failing command?
23:59:16 <ivy> hmm, deleting <objdir>/tmp fixed it but that should not be necessary, need to debug this more after this build is done